A user receives a deny message that the installation file (install.exe) is blocked by the
HTTP-proxy policy and cannot be downloaded. Which HTTP proxy action rule must you
modify to allow download of the installation file? (Select one.)
A. HTTP Request > Request Methods
B. HTTP Response > Body Content Types
C. HTTP Response > Header Fields
D. WebBlocker
E. HTTP Request > Authorization - Correct Answers -HTTP Response > Body Content
Types
How is a proxy policy different from a packet filter policy? (Select two.)
A. Only a proxy policy examines information in the IP header.
B. Only a proxy policy uses the IP source, destination, and port to control network
traffic.
C. Only a proxy policy can prevent specific threats without blocking the entire
connection.
D. Only a proxy works ta the application, network, and transport layers to examine all
connection data. - Correct Answers -C. Only a proxy policy can prevent specific threats
without blocking the entire connection.
D. Only a proxy works ta the application, network, and transport layers to examine all
connection data.
An email newsletter about sales from an external company is sometimes blocked by
spamBlocker. What option could you choose to make sure the newsletter is delivered to
your users? (Select one.)
A. Add a spamBlocker exception based on the From field of the newsletter email.
B. Set the spamBlocker action to quarantine the email for later retrieval.
C. Add a spamBlocker subject tag for bulk email messages.
D. Set the spamBlocker virus outbreak detection action to allow emails from the
newsletter source. - Correct Answers -A. Add a spamBlocker exception based on the
From field of the newsletter email
Which WatchGuard tools can you use to review the log messages generated by your
Firebox? (Select three).
, A. Firebox System Manager > Traffic Monitor
B. Fireware XTM Web UI > Traffic Monitor
C. Firebox System Manager > Status Report
D. Dimension > Log manager
E. WatchGuard System Manager > Policy Manager - Correct Answers -A. Firebox
System Manager > Traffic Monitor
B. Fireware XTM Web UI > Traffic Monitor
D. Dimension > Log manager
To enable remote devices to send log messages to Dimension through the gateway
Firebox, what must you verify is included in your gateway Firebox configuration? (Select
one.)
A. You can only send log messages to Dimension from a computer that is on the
network behind your gateway Firebox.
B. You must change the connection settings in Dimension, not on the gateway Firebox.
C. You must add a policy to the remote device configuration file to allow traffic to a
Dimension.
D. You must make sure that either the WG-Logging packet filter policy, or another policy
that allows external connections to Dimension over port 4115, is included in the
configuration file. - Correct Answers -D. You must make sure that either the WG-
Logging packet filter policy, or another policy that allows external connections to
Dimension over port 4115, is included in the configuration file.
You have a privately addressed email server behind your Firebox. If you want to make
sure
that all traffic from this server to the Internet appears to come from the public IP address
203.0.113.25, regardless of policies, which from of NAT would you use? (Select one.)
A. In the SMTP policy that handles traffic from the email server, select the option to
apply dynamic NAT to all traffic in the policy and set the source IP address
203.0.113.25.
B. Create a global dynamic NAT rule for traffic from the email server and set the source
IP address to 203.0.113.25.
C. Create a static NAT action for traffic to the email server, and set the source IP
address to 203.0.113.25. - Correct Answers -in the SMTP policy that handles traffic
from the email server, select the option to apply dynamic NAT to all traffic in the policy
and set the source IP address 203.0.113.25.
The IP address for the trusted interface on your Firebox is 10.0.40.1/24, but you want to
change the IP address for this interface. How can you avoid a network outage for clients
on
the trusted network when you change the interface IP address to 10.0.50.1/24? (Select
one.)
A. Create a 1-to-1 NAT rule for traffic from the 10.0.40.0/24 subnet to addresses on the
10.0.50.0/24 subnet.
B. Add 10.0.40.1/24 as a secondary IP address for the interface.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller millyphilip. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $11.49. You're not tied to anything after your purchase.